Introduction
Installing Reflection for Secure ITSystem RequirementsInstall and Uninstall Reflection for Secure ITInstall and Uninstall Reflection PKI Services ManagerUpgrading from Reflection for Secure IT version 7.xAutomatic Migration of Reflection 6.x and F-Secure SettingsUninstall Reflection for Secure ITInstaller Advanced TabGetting StartedGet Started with the Server ConsoleStart and Stop the ServerGetting HelpUnderstanding Secure ShellGeneral Server ConfigurationSaving Server SettingsRestore Default SettingsStatus TabGeneral PaneChange the Server PortNetwork PaneNetwork Binding Dialog BoxData ProtectionData EncryptionData IntegrityFederal Information Processing Standard (FIPS)Encryption PaneKey ExchangeKey Exchange PaneServer AuthenticationPublic Key AuthenticationConfigure Public Key Host AuthenticationIdentity TabGenerate Host Private Key Dialog BoxExport Public Key Dialog BoxCertificate Authentication OverviewConfigure Certificate Server AuthenticationWindows Certificate Store Dialog BoxKerberos (GSSAPI) AuthenticationConfigure GSSAPI Server and Client AuthenticationUser AuthenticationAuthentication PanePassword and Keyboard Interactive AuthenticationConfigure Password User AuthenticationConfigure Keyboard Interactive User AuthenticationPassword PanePublic Key Authentication for UsersConfigure Public Key User Authentication: Reflection for Secure IT Windows ClientsConfigure Public Key User Authentication: Reflection for Secure IT UNIX ClientsPublic Key PaneCertificate Authentication for UsersConfigure Certificate Authentication for UsersCertificates PaneRSA SecurID AuthenticationConfigure SecurID AuthenticationRSA SecurID PaneRADIUS AuthenticationConfigure RADIUS AuthenticationRADIUS PaneRADIUS Server Dialog BoxGSSAPI (Kerberos) AuthenticationConfigure User Authentication using Windows CredentialsGSSAPI / Kerberos V5 PaneUse Cached PasswordsManage Cached PasswordsPassword Cache PaneDomain Access PaneSecure File TransferFile Transfer OverviewSpecify the User Login DirectoryCustomize Directory Access for File TransfersControl Upload and Download AccessVirtual Root Directory in Reflection for Secure ITSmart Copy and Checkpoint ResumeSFTP Directories PaneAccessible Directory Settings Dialog BoxControlling AccessAccess Control SettingsUsing Allow and Deny Rules for Access ControlControlling Access from Client ComputersClient Host Access Control PaneClient Host Access Control Dialog BoxControlling Access by GroupGroup Access Control PaneGroup Access Control Dialog BoxControlling Access by UserUser Access Control PaneUser Access Control Dialog BoxCommand Shell AccessPermissions PaneWorking with SubconfigurationsSubconfiguration OverviewConfigure Client Host-Specific SettingsClient Host Configuration PaneClient Host Configuration Dialog BoxConfigure Group-Specific SettingsGroup Configuration PaneGroup Configuration Dialog BoxConfigure User-Specific SettingsUser Configuration PaneUser Configuration Dialog BoxRevert settings to inherited valuesPort ForwardingPort Forwarding OverviewDisable Port ForwardingUsing a Server ClusterConfigure a Reflection for Secure IT ClusterConfigure Cluster Dialog BoxTroubleshootingLoggingUse the Windows Event ViewerEvent Logging PaneEnable Logging to a Text FileDebug Logging PaneCustom Log Events Dialog BoxManaging System ResourcesTroubleshooting Group SettingsTroubleshooting Reflection for Secure IT HelpReferenceFiles Used by Reflection for Secure ITRegular Expression SyntaxTable of Migrated SettingsTable of Migrated PKI SettingsManual Host Key MigrationPattern Strings in Directory PathsKeyboard Access to Console FeaturesPKI Services Manager Command Reference (winpki and pkid)PKI Services Manager Configuration File Reference (pkid_config)PKI Services Manager Map File Reference (pki_mapfile)Sample PKI Services Manager Mapping RulesSample Map File with RuleType StanzasPKI Services Manager Return Codesrsshd Command Line Utilityssh-keygen Command Line Utilityssh-certtool Command ReferenceGlossary of TermsauthenticationCA (certification authority)cipherCRL (Certificate Revocation List)data integritydigital certificatedigital signatureencryptionGSSAPI (Generic Security Services Application Program Interface)hashKerberosMAC (Message Authentication Code)passphrasePKCSPKI Services Manager Configuration File <<shared>>PKI Services Manager data folder <<Windows>>PKI Services Manager Map File <<shared>>port forwardingpublic key/private keyReflection for Secure IT configuration fileReflection for Secure IT data folderReflection for Secure IT migration log fileregular expressionSCP1SCP2Secure ShellSFTPtrust anchorUTC (Universal Time, Coordinated)Windows home folderWindows user profile folderCopyrights and Notices